18 of 18 ISO/IEC 27001 Jobs in South Wales

d like to discuss the role further, please contact Dennis Jones, Principal Data Security Specialist: dennis.jones2@wales.nhs.uk The ability to speak Welsh is desirable for this post; Welsh and / or English speakers are equally welcome to apply. You will be able to find a full Job description and Person Specification attached within the supporting documents or please click … are supportive of flexible working arrangements, including part time roles and job sharing. To find out more about working for us and the benefits we offer please visit https: / / phw.nhs.wales / careers / For guidance on the application process, please visithttps: / / phw.nhs.wales / working-for-us / applicant … information-and-guidance / Job description Job responsibilities The Senior Cyber Security Engineer at Public Health Wales is primarily responsible for protecting the organisations digital infrastructure, systems and sensitive data by implementing and enhancing cyber security measures across all IT systems. This includes designing and documenting secure cyber infrastructure, including network architectures and communication systems, as well as ensuring More ❯

to incidents. The specialist is responsible for developing, maintaining, and supporting cyber security systems in line with Public Health Wales' operational requirements. They are expected to participate in early / late shift rotations and the on-call rota. A crucial part of the role includes staying current with emerging security technologies and threats, conducting research, and evaluating how to … are supportive of flexible working arrangements, including part time roles and job sharing. To find out more about working for us and the benefits we offer please visit https: / / phw.nhs.wales / careers / For guidance on the application process, please visithttps: / / phw.nhs.wales / working-for-us / applicant … information-and-guidance / Job description Job responsibilities You will be able to find a full Job description and Person Specification attached within the supporting documents or please click "Apply now" to view on Trac. The ability to speak Welsh is desirable for this post; Welsh and / or English speakers are equally welcome to apply. Person Specification More ❯

driven, no-nonsense approach to delivery Technically fluent and able to identify and resolve delivery risks through direct engagement with engineers Familiar with governance and compliance frameworks (e.g. ISO 27001) while keeping delivery lean and pragmatic Clear and confident communicator across technical and executive levels Detail-oriented with a sharp eye for spotting risks and weaknesses … Effective in using streamlined processes and high-impact reporting tools (e.g. RAID logs, 1-page dashboards) Preferred Certifications: PRINCE2 Practitioner ITIL AWS or Azure Cisco (desirable) Awareness of ISO control frameworks such as ISO 27001 More ❯

will be directly responsible for continued success of the entire Aforza product suite. As such, the ideal candidate must be hands-on, flexible, and used to working in startup / scale up environments, where every employee has a direct impact on the company's success. All of Aforza's cloud applications, microservice and websites are hosted on Google Cloud … with IaC tools such as Terraform Strong understanding of authentication and authorization protocols such as OAuth 2.0, OIDC, SAML etc Experience with SQL and NoSQL databases Experience with Docker / Kubernetes Knowledge of security and IAM best practices You might not have all of the above, but don't let that stop you. We're excited to hear from … benefits, including: Work on cutting edge technologies with world leading customers Stock options 25 days PTO & bank holiday Pension Private health cover & income protection Flexible hours and hybrid remote / office working Fantastic, brand new office space in the heart of Cardiff city centre Our Interview Process Director, Cloud Infrastructure Cardiff / Remote (UK only) About Aforza Aforza More ❯

3+ years of hands-on Azure engineering experience (IaaS ? PaaS), including Infra as Code. Strong SQL skills and proficiency in Python or PySpark . Built or maintained data lakes / warehouses using Synapse , Fabric , Databricks , Snowflake , or Redshift . Experience hardening cloud environments (NSGs, identity, Defender). Demonstrated automation of backups, CI / CD deployments, or DR workflows. … work effectively across time zones and teams. Thrives in a small, high-trust, high-autonomy team culture. Day-to-Day Responsibilities Infrastructure & Automation: Deploy and manage infrastructure using Bicep / Terraform , GitHub Actions , and PowerShell / DSC . Data Engineering: Architect and implement scalable ETL / ELT solutions; model schemas, optimize performance, and apply lakehouse best practices. … Security & Resilience: Implement best-practice cloud security (NSGs, Defender, Conditional Access), automate DR / backups, and run quarterly restore drills. Collaboration: Partner with AI Product Owners, Business Performance, and Data Analysts to translate business needs into robust data solutions. Mentorship & Knowledge Sharing: Act as a data SMEguiding system administrators and upskilling junior technical team members. What You'll Achieve More ❯

Azure Cloud Security Architect – £700 / day – Outside IR35 – Hybrid (Cardiff) We’re working with a major organisation undergoing a large-scale Azure transformation. They’re seeking a Cloud Security Architect with deep Azure expertise to lead the design and implementation of secure cloud solutions. Key Details: Location: Cardiff (Hybrid – 2 days / week on-site) Rate: Up … to £700 / day IR35 Status: Outside IR35 Contract Length: 6 months (strong extension potential) Start Date: ASAP Role Overview: As the Azure Cloud Security Architect, you’ll play a critical role in shaping the organisation’s cloud security posture. You’ll work across architecture, engineering, and compliance teams to ensure secure-by-design principles are embedded throughout the … Key Responsibilities: Design and implement secure Azure cloud architectures Lead threat modelling, risk assessments, and security reviews Define and enforce cloud security policies and governance Integrate security into CI / CD pipelines and DevOps practices Provide guidance on Azure-native security tools (e.g., Defender for Cloud, Sentinel, Key Vault, Azure Policy) Support zero trust and identity-based security models More ❯

Cyber Risk Assessment Analyst Up to £62,000 + bonus South Wales / Hybrid Permanent I'm looking for a cyber risk assessment specialist to identify and assess cyber risks across our client's IT and OT environments. The successful candidate will also be recommending mitigation strategies to strengthen cyber resilience and meet regulatory requirements. The ideal candidate will … with risk insights Staying current with cyber threats and best practices Continuously improving risk assessment methodologies What I'm Looking For: Strong understanding of security frameworks (e.g., NIST, ISO 27001). Strong understanding of cyber risk management and threat actors Knowledge of technical security controls Experience in cyber risk assessment and technical IT or OT roles More ❯

Cyber Risk Assessment Analyst Up to 62,000 + bonus South Wales / Hybrid Permanent I'm looking for a cyber risk assessment specialist to identify and assess cyber risks across our client's IT and OT environments. The successful candidate will also be recommending mitigation strategies to strengthen cyber resilience and meet regulatory requirements. The ideal candidate will … with risk insights Staying current with cyber threats and best practices Continuously improving risk assessment methodologies What I'm Looking For: Strong understanding of security frameworks (e.g., NIST, ISO 27001). Strong understanding of cyber risk management and threat actors Knowledge of technical security controls Experience in cyber risk assessment and technical IT or OT roles More ❯

GRC Manager Up to £78,000 + bonus South Wales / Hybrid I'm looking for a GRC Manager to oversee the identification, evaluation and management of risks from a cyber security perspective for a client based in South Wales. The ideal candidate will have experience of leading a GRC team and a firm grasp of experience of commonplace … Manager * Supporting incident response planning with risk insights * Continuously improving risk assessment methodologies What I'm Looking For: * GRC leadership experience * Strong understanding of security frameworks (e.g., NIST, ISO 27001). * Proven experience completing internal and external cyber risk assessments * CNI experience would be very useful What's in it for you: * Up to More ❯

GRC Manager Up to 78,000 + bonus South Wales / Hybrid I'm looking for a GRC Manager to oversee the identification, evaluation and management of risks from a cyber security perspective for a client based in South Wales. The ideal candidate will have experience of leading a GRC team and a firm grasp of experience of commonplace … Manager Supporting incident response planning with risk insights Continuously improving risk assessment methodologies What I'm Looking For: GRC leadership experience Strong understanding of security frameworks (e.g., NIST, ISO 27001). Proven experience completing internal and external cyber risk assessments CNI experience would be very useful What's in it for you: Up to More ❯

clearly to non-technical stakeholders Work closely with teams to support data-driven decisions Compliance & Lifecycle Support GDPR compliance and Data Lifecycle Management Contribute to maintaining Cyber Essentials and ISO27001 standards Training & Culture Promote data literacy across teams Deliver internal training on Power BI, Excel and other data tools Embed data metrics into team performance tracking What You’ll Need More ❯

clearly to non-technical stakeholders Work closely with teams to support data-driven decisions Compliance & Lifecycle Support GDPR compliance and Data Lifecycle Management Contribute to maintaining Cyber Essentials and ISO27001 standards Training & Culture Promote data literacy across teams Deliver internal training on Power BI, Excel and other data tools Embed data metrics into team performance tracking What You ll Need More ❯

understanding of the plugins including those in the XrmToolBox. Understanding of PCF Controls and how they can be used to extend Dynamics functionality Design configurations and customisation of Dataverse / Dynamics entities and forms Design of PowerApps integrations with other Azure components such as Logic Apps, Azure Service Bus and Azure Functions Consult on API designs for purposes such … apply HMG IA technical security controls according to ISO 27001 & the Security Policy Framework (SPF) Person specification Essential Criteria Design configurations and customisation of Dataverse / Dynamics entities and forms Understanding of PCF Controls and how they can be used to extend Dynamics functionality Good understanding of the plugins including those in the XrmToolBox Design More ❯

understanding of the plugins including those in the XrmToolBox. Understanding of PCF Controls and how they can be used to extend Dynamics functionality Design configurations and customisation of Dataverse / Dynamics entities and forms Design of PowerApps integrations with other Azure components such as Logic Apps, Azure Service Bus and Azure Functions Consult on API designs for purposes such … IPO. Proactively apply HMG IA technical security controls according to ISO 27001 & the Security Policy Framework (SPF) Essential Criteria Design configurations and customisation of Dataverse / Dynamics entities and forms Understanding of PCF Controls and how they can be used to extend Dynamics functionality Good understanding of the plugins including those in the XrmToolBox Design More ❯

innovative projects involving AI and ML which provides a dynamic and stimulating work environment. Key Responsibilities Architect and document solutions in a cloud-first environment. Design and configure Dataverse / Dynamics entities and forms. Develop Power Apps (Model and Canvas), integrating with Azure services like Logic Apps, Service Bus, and Azure Functions. Extend Dynamics functionality using PCF controls, XrmToolBox … and internal teams, presenting at architecture boards and guiding strategic decisions. Stay informed on emerging technologies, particularly across the Microsoft ecosystem. Apply government security controls in line with ISO 27001 and the Security Policy Framework (SPF). Essential Skills & Experience Expert in Power Platform and Dynamics 365 architecture. Hands-on experience with Dataverse customisation, PCF controls More ❯

innovative projects involving AI and ML which provides a dynamic and stimulating work environment. Key Responsibilities Architect and document solutions in a cloud-first environment. Design and configure Dataverse / Dynamics entities and forms. Develop Power Apps (Model and Canvas), integrating with Azure services like Logic Apps, Service Bus, and Azure Functions. Extend Dynamics functionality using PCF controls, XrmToolBox … and internal teams, presenting at architecture boards and guiding strategic decisions. Stay informed on emerging technologies, particularly across the Microsoft ecosystem. Apply government security controls in line with ISO 27001 and the Security Policy Framework (SPF). Essential Skills & Experience Expert in Power Platform and Dynamics 365 architecture. Hands-on experience with Dataverse customisation, PCF controls More ❯

Job Title: Cyber Security Architect Location: South Wales / Remote Employment Type: Permanent, Full-Time Salary: £69,000 - £78,850 + excellent Benefits About the Role We're working with a well-established organisation in South Wales looking for a Cyber Security Architect to help shape and implement enterprise-wide security architecture. Reporting to the Senior Cyber Security Architect … role is key to developing the organisation's long-term Cyber Security Strategy and improving resilience across IT and OT environments. You'll lead on the design of robust, ISO27001-compliant frameworks, contribute to strategic security planning, and work closely with internal teams to embed best practice across systems and services. This is a great opportunity for someone ready to … a high-impact role that combines technical depth with strategic influence. Key Responsibilities Define and embed Security Architecture Principles to guide all programmes, projects, and changes Develop and maintain ISO27001-compliant security policies and an ISMS framework Create reference architectures for Identity and Privileged Access Management Provide architecture reviews for all new systems and major changes to existing ones Support More ❯

closely with the Data Insights team to deliver integrated, forward-thinking solutions. Oversee the design, implementation, and optimisation of IT infrastructure to meet evolving business needs. Champion cybersecurity and ISO27001 compliance in collaboration with our compliance team. Lead the development and implementation of our AI strategy to support efficiency and innovation. Manage budgets, suppliers, and resources to drive value and … preferred). Proven senior leadership experience in IT, ideally within the FM sector. Strong understanding of CAFM systems (Maximo experience preferred). Expertise in cybersecurity, governance, and compliance (including ISO27001). A collaborative, solutions-focused approach to leading high-performing, cross-functional teams. Experience in vendor and budget management. Confident presentation skills to support client engagement and business development. A … s upport from Atlas. Wagestream - our financial wellbeing and benefits platform which provides you with real-time access to earned wages, information to improve your financial health, and discounts / savings at leading retailers and supermarkets. Cycle to work scheme . Workplace pension scheme. Staff recognition scheme (Stars of Atlas). Staff engagement portal. The ability to progress your More ❯